

















instant analysis of serial links 


Design by M. Muller 


With the help of a minimal quantity of hardware and a simple piece of 
software it is possible to tap into the data stream between two serial 
interfaces and observe it on the computer monitor. 


The name ‘Data Spy’ immediately conjures up be used for such purposes. There are a PC and a peripheral, or a second 
images of clandestine practices, in general many legitimate reasons for PC. It could be part of a faultfinding 
however, the circuit described here will not analysing the data stream between procedure, for example, or as a con- 
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Figure |. The hardware for the Data Spy is really simple. The supply voltage is 


‘stolen’ from the PC. 


tinuous data monitor, or as an edu- 
cational exercise to unravel the 
details of certain protocols. 

The implementation of the circuit 
described here is a kind of in-line 
plug that is simply inserted in series 
with the connection between the 
RS232 interfaces of the PC and the 
peripheral under consideration. A 
third sub-D connector functions as 
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the connection for the additional PC, 
which is used to examine the data 
stream. 

The Data Spy is very easy to use. 
The software is compatible with 
Windows9x and WindowsNT4.0, the 
data can be displayed in ASCII, dec- 
imal or hexadecimal format. With 
two circuits in series, it becomes 
possible to observe both data 


o 


streams when they occur in both directions 
simultaneously. The only requirement is that 
the two data streams must have identical 
baud rates. The circuit does not require its 
own power supply, because its supply volt- 
age is obtained from the analysing PC. 


Hardware 


A brief glance at Figure 1 makes it clear that 
there is very little to the necessary hardware. 
In fact, it consists of no more than a flip-flop 
(bistable) (IC1) and some ten passive compo- 
nents. 

The path K1/K3 will be in series with the 
serial connection to be examined. As can be 
seen, all data and control lines are simply 


COMPONENTS LIST 


Resistors: 
RI-R4 = 15kQ 


Capacitors: 
Cl = l0uF 25V radial 
C2 = 100nF 


Semiconductors: 
DI-D4 = IN4148 
ICI = 4011 


Miscellaneous: 

KI = 9-way sub-D plug (male), PCB mount 

K2,K3 = 9-way sub-D socket (female), PCB 
mount 

JP1, JP2 = jumper 

PCB, order code 010041-1 (see Readers 
Services page or Elektor website) 

Project software: code 010041-1 I, free 
download from Elektor website. 
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Figure 2. The printed circuit board for the ‘in-line plug’ is available from Elektor Electronics Readers’ Services. 
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connected straight through. For our snooping 
activities, only the data lines from either side 
are required. When data is received from one 
of the directions, the flip-flop is either set or 
reset and the corresponding data direction is 
indicated with the DSR control line. With the 
aid of jumpers JP1 and JP2 a selection can be 
made between the data from either source; if 
JP1 is closed, data from the PC is looped 
through to K2, and when JP2 is closed, the 
data is from the external device or the ‘SPS’ 
(Serial Peripheral System). The signal, via 
D1/D2 and R4, is applied to pin 2 (RXD) of K2, 
to which the monitoring PC is connected. 

Resistors R1 and R2 ensure that IC1 is not 
subjected to voltage spikes or negative 
potentials. The resistance value selected, in 
conjunction with the internal capacitance of 
IC1, has the result that the maximum baud 
rate is limited to 38,400 baud (kbits/s). 

The power supply for IC1 is obtained from 
the PC, via D3 (DTR), D4 (RTS) and C1. This is 
not a problem because of the extremely low 
power consumption of IC1. This way, an addi- 
tional power supply with all its wiring is 
avoided. Capacitor C2 provides additional RF 
decoupling. 

Figure 2 shows the printed circuit board 
for the project. Since there are so few compo- 
nents, the construction of the circuit should 
take an hour at most. If you follow the com- 
ponent overlay closely and stick to the parts 
list than it is very unlikely that something will 
go wrong with the practical realisation of the 
hardware. 


Software 


The program, written and compiled in Bor- 
land Delphi 5, has the name ‘BinTerm’ (from 
binary terminal) and can be downloaded from 
the Elektor Electronics web site. The item 
number is 010041-11. The program runs 
under Windows9x and WindowsNT4.0 and 
consists of only one file (BinTerm.exe). 
When exiting the program, all set-ups are 
stored in an INI-file. 


The program performs three tasks: 
Main task: handles all visible elements. 
Serial port read task: storing all incoming 
characters in a circular buffer (94000 


symbols). 


Display task: reading the data from the circu- 
lar buffer and displaying it on the screen. 


The three tasks work independently of each 


other. Unfortunately, processing the data syn- 
chronously is not possible with these 32-bit 
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operating systems. To compensate 
for this, the serial interface is read by 
its own task at higher priority. The 
displaying of data is then processed 
using a second task. The data, there- 
fore, is stored correctly together with 
the corresponding direction and is 
displayed on the screen a bit later. If 
the data arrives too fast, or if the 
turnaround time between transmis- 
sion and reception is too short, then 
the PC is unable to properly deter- 
mine the direction. 
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Usage 

After starting BinTerm. exe you are 
faced with a blank screen onto 
which the incoming data will be dis- 
played, as well as a few buttons. If 
you are using two Data Spies in 
series in order to read the simulta- 
neous data in both directions, then 
the screen is divided into two win- 
dows, as illustrated in Figure 3. 


The operation of the buttons is as 
follows: 


| 


Figure 3. Initial window after starting BinTerm, in this case divided into two for the 


display of two-way traffic. 
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Figure 4. Under ‘communication all the settings necessary for data communications 


can be found. 


break: pause the display of data; 

clear: erase the contents of the win- 
dow; 

save: store the displayed contents in 
a text file; 

close: quit the program. 


Individual characters and lines can 
be selected and copied with CTRL-c 
and pasted into a text editor with 
CTRL-v. After clicking ‘break’ the 
legend on the button will change to 
‘continue’. Clicking the button again 


will resume the display of the data 
on the screen. 

To facilitate the storage of the 
data in a text file, BinTerm writes as 
the first line ‘left box’, followed by 
the text displayed in the left box. 
This is followed by the line ‘right 
box’ after which the content of the 
right box is stored. 


Communications 
After clicking the tab ‘communica- 
tion’ at the top of the screen, the 
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Figure 5. Under ‘data changes’ selection can be made from three data formats and 


individual items can also be selected. 
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setup window appears (Figure 4), where 
most options will require little comment. A 
few remarks follow nonetheless. 

The ‘apply’ button causes the serial inter- 
face to be reopened with the new settings; 
the ‘close’ button ends the program. 

Of course, the interface parameters (baud 
rate, stop bits and parity) need to be set cor- 
rectly. The language can be selected under 
‘language/sprache’. When selecting the 
method of data collection (box ‘way’), the cor- 
rect position of the jumpers is automatically 
indicated. Collecting data simultaneously in 
both directions can, as previously mentioned, 
only be achieved with two Data Spies con- 
nected in series. In principle, the data rate 
has to be the same in both directions, and in 
practice this will be nearly always the case. 
There is a little trick however, that allows the 
Data Spy to operate during the rare occur- 
rence of two different baud rates. Naturally, 
you need two circuits connected in series and 
start BinTerm twice. In the first copy, select 
‘from PC’ and ‘COM1’ and in the second ver- 
sion, select ‘from SPS’ and ‘COM2’. 

If the data stream contains relatively few 
characters then the arrival of each of these 
may be indicated with an audible signal 
(‘sound’). If however, the data rate is greater 
than 20 characters per second then this fea- 
ture will be automatically disabled. The 
higher the data rate, the faster the PC needs 
to be in order to determine the data direction 
correctly. 


Data changes 

After clicking on the tab ‘data changes’, 
another setup window will be displayed (Fig- 
ure 5). Here you can choose how the data is 
displayed: ASCII, decimal or hexadecimal. It is 
also possible to add an interpretation for each 
item. The appropriate characters will then be 
displayed in the right-hand window. A dou- 
ble-click will remove the selected items from 
the list. 

When the displayed data from the PC 
wraps to the next line, the text ‘text at line- 
end PC’ is shown, when the same happens 
with SPS data the text ‘text at line-end SPS’ 
appears. 


Final Remarks 


After clicking on the tab ‘info’ the name, 
email- and Internet address of the designer of 
Data Spy and BinTerm software is displayed. 
Any remarks or requests for further informa- 
tion should be directed there. 
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